Last week, a bunch of messages bounced. I resent the bounces I could detect yesterday; sorry about that. My new mail provider is having some teething issues with respect to deliverability.

Events

Tomorrow evening there's an Amazon Linux feature announcement at the San Franciso Loft. I'll be there; I'll have Last Week in AWS stickers and such if you find me.

Friend of the newsletter Datadog is having their Dash conference in New York on July 11-12. If it works for your schedule, I strongly suggest attending; AWS is a platinum sponsor, and longtime readers know how finicky they are about putting their logo on any conference that doesn't have the word "Amazon" in the title somewhere. Use the code "DASHLAST" to get 20% off of registration.

Welcome to issue number 64 of Last Week in AWS.

Community Contributions

Husband of renowned bassoonist Annet Vogels, Werner Vogels is also Amazon’s CTO. This week he talks about Amazon’s various database offerings and why there are so many of them.

If you need to set up a private Docker registry, using S3 isn’t the worst idea. Just make sure you get the permissions right…

I’m a happy IOpipe customer– moreso now that I’m going to use CPU profiling to improve my functions’ efficiency. Watch this space for either a triumphant victory or a sad yet blameless postmortem.

Rhino Security highlights a few different methods of AWS Privilege Escalation; this is a fascinating glimpse into “what happens when people finally start treating their S3 buckets with respect” and into other areas for potential exploits.

A great discussion of how to build a business using a Slack bot. This is nifty enough that I don’t need a direct AWS tie-in to mention it.

Introducing Optimize CPUs for Amazon RDS for Oracle - Another wonderful answer to “how can we absolutely screw Oracle over with respect to their crappy billing model?” On the one hand, it feels mean. On the other… is anyone rooting for Oracle in this space?

Tools

A fascinatingly opinionated way of building out serverless applications, Titanium Lambda is open sourced, not attempting to sell anything, and frankly a great series of patterns for a “what do I do now” serverless learning cycle.

cloudfront-auth is a Lambda@Edge function that lets you authenticate requests against a third party oauth provider such as Twitter, Github, etc. I’m fascinated by this– it’s similar to the Cognito integration with ALBs, but without a lot of the complexity.

A fun open source “try by doing” series of AWS workshops. I’m eager to see where this goes.

…and that’s what happened Last Week in AWS.

I’m Corey Quinn. I help people significantly reduce and understand their AWS bills and speak broadly on the conference circuit. I advise companies doing interesting things in the cloud space, such as ReactiveOps.

If you’ve enjoyed reading this, tell your friends to sign up at lastweekinaws.com (or post a link in your company Slack team!) about it. As always, if you’ve seen a blog post, a tool, or anything else AWS related that you think the rest of the community should hear about, send them my way. You can either hit reply– or join the #lastweekinaws channel on the og-aws Slack team.

To make sure you keep getting these emails, please add corey@lastweekinaws.com to your address book or whitelist me. Want out of the loop? Click here to tell me to leave you alone. My mailing address: 1728 Ocean Ave #307, San Francisco, CA 94112

Want to see more biting wit like this? Sign up to get this level of snarky analysis in your inbox every Monday.